[Lxc-users] Linux Containers vs Solaris Zones
Hello I'm hoping someone on the list could answer a couple of questions. I believe Linux Containers are the perfect answer to some of the issues I have at work but wanted to confirm some technical bits before formally submitting any designs. I have worked with Solaris Zones in the past. The questions: Does each Linux Container have it's own network stack? If so, how independent is the stackie could each container have a different routing table? Does the Linux Container share the rpmdb of the physical host or can each lxc have it's own rpmdb? Does the Linux Container share passwd/shadow/pam authentication of the physical host? How does the Linux Container handle network cards/MAC addresses? I noticed my RHN Satellite RHEL 6.1 channel doesn't contain the lxc rpm, anybody running containers on RHEL 6.1. Any answers or comments would be much appreciated! Thanks Bruce -- RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1 ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
Re: [Lxc-users] Linux Containers vs Solaris Zones
On 11/15/2011 10:14 AM, bruce bushby wrote: Hello I'm hoping someone on the list could answer a couple of questions. I believe Linux Containers are the perfect answer to some of the issues I have at work but wanted to confirm some technical bits before formally submitting any designs. I have worked with Solaris Zones in the past. The questions: Does each Linux Container have it's own network stack? If so, how independent is the stackie could each container have a different routing table? Yes. Does the Linux Container share the rpmdb of the physical host or can each lxc have it's own rpmdb? No, it doesn't share. Does the Linux Container share passwd/shadow/pam authentication of the physical host? No, it doesn't. However you can do it by hard links or bind mounts. How does the Linux Container handle network cards/MAC addresses? Own MAC. I noticed my RHN Satellite RHEL 6.1 channel doesn't contain the lxc rpm, anybody running containers on RHEL 6.1. According to notes there is support: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.1_Technical_Notes/ar01s03.html But I don't find any package. I think the easiest way to make one for yourself. tamas -- RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1 ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
[Lxc-users] [PATCH 1/1] ubuntu template: use -updates and -security (v3)
Particularly for LTS releases, which many people will want to use in their containers, it is not wise to not use release-security and release-updates. Furthermore the fix allowing ssh to allow the container to shut down is in lucid-updates only. With this patch, after debootstrapping a container, we add -updates and -security to sources.list and do an upgrade under chroot. Unfortunately we need to do this because debootstrap doesn't know how to. Changelog: Nov 14: as Stéphane Graber suggested, make sure no daemons start on the host while doing dist-upgrade from chroot. Nov 15: use security.ubuntu.com, not mirror. (stgraber) Signed-off-by: Serge Hallyn serge.hal...@canonical.com --- templates/lxc-ubuntu.in | 31 +-- 1 files changed, 29 insertions(+), 2 deletions(-) diff --git a/templates/lxc-ubuntu.in b/templates/lxc-ubuntu.in index 2be8680..ed6131f 100644 --- a/templates/lxc-ubuntu.in +++ b/templates/lxc-ubuntu.in @@ -105,9 +105,36 @@ download_ubuntu() return 1 fi -mv $1/partial-$arch $1/rootfs-$arch -echo Download complete. +echo Installing updates +if [ -z $MIRROR ]; then +MIRROR=http://archive.ubuntu.com/ubuntu; +fi +cat $1/partial-${arch}/etc/apt/sources.list EOF +deb $MIRROR ${release}-updates main universe +deb http://security.ubuntu.com/ubuntu ${release}-security main universe +EOF +chroot $1/partial-${arch} apt-get update +if [ $? -ne 0 ]; then +echo Failed to update the apt cache +return 1 +fi +cat $1/partial-${arch}/usr/sbin/policy-rc.d EOF +#!/bin/sh +exit 101 +EOF +chmod +x $1/partial-${arch}/usr/sbin/policy-rc.d + +chroot $1/partial-${arch} apt-get dist-upgrade -y +ret=$? + +rm -f $1/partial-${arch}/usr/sbin/policy-rc.d +if [ $ret -ne 0 ]; then +echo Failed to upgrade the cache +return 1 +fi +mv $1/partial-$arch $1/rootfs-$arch +echo Download complete return 0 } -- 1.7.5.4 -- RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1 ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
Re: [Lxc-users] autofs in lxc containers?
Any progress on autofs now? Thanks. Fred -Original Message- From: Daniel Lezcano [mailto:daniel.lezc...@free.fr] Sent: Sunday, June 26, 2011 12:48 AM To: Fred Liu Cc: Lxc-users@lists.sourceforge.net Subject: Re: [Lxc-users] autofs in lxc containers? On 06/25/2011 04:45 PM, Fred Liu wrote: http://comments.gmane.org/gmane.linux.kernel.containers.lxc.general/894 Yeah. I sent the patchset to the mailing list maintainer but in the meantime with some stree test I hanged the kernel, so there is a race somewhere I should have to fixed but forget to continue with this patch. Maybe I can resurrect the patch, fix it and resend. Great! Maybe I can also help to test. Yes, if you can test the patch that would be nice. Thanks -- Daniel -- RSA(R) Conference 2012 Save $700 by Nov 18 Register now http://p.sf.net/sfu/rsa-sfdev2dev1 ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users